Great conversation. Insightful stuff on bug bounties, but I loved their discussion on work-life balance, making comparisons, digital detoxing, and quality work. Some good wisdom shared, thanks, @0xriptide & @adrianhetman!
@bountyhunt3rzyoutube.com/watch?v=8wWYzw…
Picture this: you compromise the account of a NPM developer whose packages are downloaded more than 2 billion times per week. You could have unfettered access to millions of developer workstations. Untold riches await you. The world is your oyster.
You profit less than 50 USD.
At BlockApex, we’ve always believed that security isn’t just about finishing an audit; it’s about building trust that scales.
That’s why we put together the BlockApex Audit Dashboard: 👉reports.blockapex.io
It’s not just a portfolio of audits, it’s a way to actually see the…
Hey @LoopGhost007 .
You were not banned for submitting a “valid fund-drain critical vuln in Mountain Protocol”. You were banned for spamming projects with garbage AI slop reports. Your @MountainUSDM report was flagged as one and didn’t pose any threat.
Our detection system…
Hey @LoopGhost007 .
You were not banned for submitting a “valid fund-drain critical vuln in Mountain Protocol”. You were banned for spamming projects with garbage AI slop reports. Your @MountainUSDM report was flagged as one and didn’t pose any threat.
Our detection system… https://t.co/mxg7dQEV8a
Looks like we auditors need to be more forceful in our arguments and make it absolutely clear that:
Absence of evidence is not evidence of absence
Or as Edsgar Dijkstra put it: Testing shows the presence, not the absence, of bugs
I've lost count of the number times I've seen a…
Looks like we auditors need to be more forceful in our arguments and make it absolutely clear that:
Absence of evidence is not evidence of absence
Or as Edsgar Dijkstra put it: Testing shows the presence, not the absence, of bugs
I've lost count of the number times I've seen a…
🚨 NEW: VSDeer is live! 🦌
Time to protect your assets by avoiding malicious IDE extensions. VSDeer scans for malicious extensions before you install them.
VSDeer runs a nice scam algorithm which detects scammy extensions.
Also, you should sandbox all your extensions, so i…
Rushing AI adoption without proper security controls is risky.
Organizations integrating LLMs carelessly create new attack surfaces that adversaries can exploit.
idk man, but the internet feels like a scam-hunting arena lately. It used to be a wild playground: fun, weird, full of _good_ surprises. Now every fucking click feels like a setup: ads chasing you, scams waiting to pounce, malware lurking in the shadows. What was once curiosity &…
Some of you suggested I should help others to overcome my brain temporary nihilistic views.
One auditor roadmap to rule them all.
Follow it step-by-step and you'll become so goated people will try to milk you when they see you: zzykxx.github.io/goatedauditoor…
Here is the proof of the unique power of public audit contests: github.com/Layr-Labs/eige…. Context:
- the fix PR for a High sev bug found by multiple SRs in @eigenlayer's comp on @cantinaxyz;
- the bug was missed by fuzzing, audits, and formal verification.
Scroll for details.…
Something remarkable just happened in Pakistan.
In only 8 months, citizens built the equivalent of half the country’s national electric grid, without waiting for government or utilities.
How?
☀️ Cheap solar panels
☀️ TikTok tutorials showing how to install them
☀️ Farmers…
A lot of people are anxious about how AI will change things.
Although nobody can predict the future — we can look at current trends and extrapolate.
1) Junior software developers already struggle to get jobs and if the trend continues, this will get worse.
2) AI agents are…
572 Followers 606 FollowingA Crypto Community manager & leading Moderator posting Alphas here. Community Support at ☁️ @Clidotcloud. EX: @blumcrypto @TimeFarmApp. DM's open for proposal.
47 Followers 540 FollowingI have been working in the penetration testing for web, API and mobile since 2019 I was working for an American company as a web application penetration tester
711 Followers 92 FollowingSolo auditors, made mainstream.
Commission-free, vetted network of top SRs.
Browse, filter, connect — or ask us to matchmake.
👇👇👇
3K Followers 6K FollowingLLM for code and reasoning. PhD student at Cornell. Previously Student Researcher at @google. Previously intern at @theteamatx.
294K Followers 204 FollowingPrince of Persia creator. You can find me at https://t.co/Lb0VlYG6oE. Also https://t.co/ulP9bjq2p0 & https://t.co/aslFiX1mvv
869 Followers 6 FollowingThe AI Security Engineer. Catch 5x more vulnerabilities on every PR. Cut 90% of the false positive noise. Try it out at https://t.co/nEvhy2K5Lu
69K Followers 28 FollowingThe world's largest secure & private email provider. Swiss-based, end-to-end encrypted, and free. Brought to you by the scientists behind @ProtonPrivacy.
129K Followers 4K Followingethereum localist, DAO cartographer, EVM whisperer, shitpost artist + chaos magician @ @allo_capital/@gitcoin. i spin bits for fun/profit watchout 4 my megabyte
595K Followers 23 FollowingSignal is an end-to-end encrypted messaging app. Privacy isn’t an optional mode, it’s just the way that Signal works. Every message, every call, every time.
1K Followers 34 FollowingSilver Sponsor at #TOKEN2049 Singapore | Visit us at Booth MB4-48
Providing Best-in-class services for all security requirements 🛠️ Building @Solidityscan
No recent Favorites. New Favorites will appear here.